Re: KAUTH_GENERIC_CANSEE

Hi,
Sorry for the delay...
Attached is a patch that does what was previously proposed, with the
following changes:
- The 'seq' number is initialized to 1 instead of 0,
- Before entering the copying procedure we're locking a
"sysctl_file_marker" lock to make sure there's only one user of the
code,
- Once done, if after bumping 'seq' it wraps (i.e. goes back to 0),
run through all processes and files (the aforementioned lock, as
well as proc_lock, are locked) and reset their marker to 0. Then,
bump 'seq' again to 1.
This has been tested locally, and a kernel module is available if anyone
is interested in further testing it on their own.
Please take a moment to review.
Thanks,
-e.